Call: +44 (0)7759 277220 Call
Blog

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Edward Stangler talks about running catpatch"] [Next entry: "Looks like 9.2.0.6 is available on more platforms now"]

Frank Nimphius paper on J2EE security in Oracle ADF



I have just completed reading Frank Nimphius's paper http://www.oracle.com/technology/products/jdev/collateral/papers/10g/adfstrutsj2eesec.pdf - (broken link) J2EE Security in Oracle ADF Web Applications which gives an excellent overview of applying J2EE security to web applications written using Oracle Application Developer Framework (Oracle ADF). It covers general J2EE security for web applications, securing struts applications developed in Oracle ADF, deploying struts applications to OC4J and Oracle application server and deploying J2EE secured applications to 10g AS and OC4J. The paper talks about how J2EE security can be used with J2EE web applications and Jakarta struts to protect page content and access to individual pages. This is a great paper and again its http://www.oracle.com/technology/products/jdev/collateral/papers/10g/adfstrutsj2eesec.pdf - (broken link) here.